Last week, Flashpoint welcomed hundreds of customers, partners, and industry leaders to FUSE 2025, our annual user conference. The event was an intensive two-day virtual summit dedicated to educating on the latest developments in the threat landscape and sharing Flashpoint’s vision for combating them. It also enabled our world-class customer community to share real-life case studies, workflows, and best practices leveraging Flashpoint’s AI-powered solutions to tackle the world’s most complex cybersecurity challenges.

While we can’t share every detail from the event, here are four key themes that are shaping how the world’s leading security experts are operationalizing Flashpoint intelligence.

Takeaway #1: AI Is Now a Tested Force Multiplier for Human Analysts

The message is clear: generative AI has become a force multiplier for global security teams that is extending human judgment, not replacing it. Organizations have moved beyond discussing the theoretical potential of AI tools to finding practical applications for them; particularly Flashpoint Ignite’s suite of AI-powered features:

• Ignite AI: Condenses thousands of search results from illicit communities, highlighting key TTPs, actors, and trends in seconds
• Echosec AI: Processes vast amounts of social media data, providing users with summaries, sentiment analysis, and search term recommendations.
• Echosec Assist: A conversational chatbot built on the last month of collected data, allowing analysts to ask questions, verify sources, and pivot directly within OSINT workflows.
• AI Image Search: A powerful feature allowing natural language media search, turning visual data into actionable intelligence.

During FUSE, we saw how a major US retailer leveraged AI to transform a single signal into a full investigation. Analysts found an illicit Telegram channel selling stolen gift cards. The key piece of evidence was an image of a card with a visible asset number. Using Flashpoint’s AI Image Search, the security team quickly identified and traced the source of the stolen asset—revealing a sophisticated, multi-national fraud ring.

Takeaway #2: OSINT Is a Bridge, Securing People and Assets from Digital Threats

For global security teams, open-source intelligence (OSINT) has become the bridge between the physical and cyber threat landscapes, translating digital hostility—such as harassment, radicalization, and online threats—into immediate physical risk.

During FUSE, industry leaders showed how their programs are now using OSINT workflows, powered by Flashpoint intelligence, to manage tens of millions of threats annually against people, assets, and brands. OSINT is critical for proactive executive protection and accelerating financial fraud investigations by connecting digital signals to real-world threats.

A powerful example came from the Community Security Initiative of New York (CSI-NY), which detailed how their analysts leveraged our Echosec platform. Using real-time OSINT, they detected a credible social media threat against a synagogue in Manhattan, New York. Immediately, they initiated in-depth research on the suspect to confirm credibility and inform law enforcement. Law enforcement intercepted the suspect hours before services began.

Takeaway #3: Infostealers are the Back Bone of the Ransomware Economy

Information-stealing malware has become a major force in modern cybercrime. In the first half of 2025 alone, infostealers were responsible for the theft of over 1.8 billion credentials, including corporate cookies, passwords, and sensitive data. Crucially, industry analysis from the 2025 Verizon DBIR shows a strong correlation: 54% of organizations hit by ransomware also appeared in infostealer logs, clearly demonstrating the financial pipeline from stolen credentials to sophisticated attacks.

Organizations need intelligence that stays ahead of the latest trends and market shifts. In a special FUSE presentation, our analysts explained how Flashpoint tracks over 30 unique infostealer families, how the most prolific strains exfiltrate data, and what organizations can do to proactively defend against them using compromised credentials datasets.

Takeaway #4: Flashpoint Is Filling the Gap in Publicly Sourced Vulnerability Intelligence

The pace of the vulnerability intelligence landscape is accelerating dramatically, with January 2025 hitting 4,300—a record high. However, while Flashpoint has documented over 24,000 vulnerabilities throughout this year, public sources of vulnerability intelligence have been faltering.

Unfortunately, the Common Vulnerabilities and Exposures (CVE) database and the National Vulnerability Database (NVD) have experienced severe disruptions in coverage, leaving thousands of exploitable vulnerabilities invisible to the vulnerability management teams relying on them. To bridge this gap, Flashpoint highlighted how customers can better defend their organization leveraging VulnDB and the FP KEV.

Join Us for Next Year’s FUSE

FUSE 2025 confirmed that operationalizing smarter, contextualized data is the future of impactful threat intelligence. The common thread across every session—from the rise of AI as a force multiplier for analysts to the crucial need to bridge the physical and cyber domains—is that organizations must be able to move faster than the threat landscape.

Flashpoint is committed to bringing our customers exclusive insights into the evolving threat landscape, the latest in intelligence collection, and the innovative AI solutions that can force multiply security teams. By leveraging Flashpoint intelligence, your organization too can better understand, prioritize and combat the risks that truly matter. Request a demo today and join us next year for FUSE 2026.